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IN THE CLAIMS : 

Please consider the claims as follows: 

1 . (Currently Amended) Apparatus, comprising: 

a plurality of internet protocol (IP) services aggregation switches for 
communicating between respective access networks and a core network, each of 
said IP services aggregation switches communicating with at least one 
respective VPN customer user, wherein said IP services aggregation switches 
communicate with said at least one VPN customer user via at least one 
enhanced integrated access device (EIAD); and 

a dynamic virtual private network (VPN) manager, for providing customer 
network management and policy server functions, including a user interface 
enabling remote management of a VPN by a VPN customer user; 

said VPN having at least one of a defined quality of service (QoS) 
parameter, a defined security parameter and a corresponding billing rate, at least 
one of said QoS parameter and said security parameter being adapted in 
response to user commands provided to said dynamic VPN manager by said 
VPN customer user; 

said dynamic VPN manager adapting at least one of said IP sen/ices 
aggregation switches and at least one of said E lA P s- EIAD to provide a 
bidirectional QoS for at least one IP flow. 

2. (original) The apparatus of claim 1 , wherein: 

said dynamic VPN manager adapts at least one of said IP services 
aggregation switches to provide at least one of a guaranteed QoS parameter and 
a guaranteed security parameter to said VPN. 

3. (cancelled) 

4. (original) The apparatus of claim 1, wherein: 
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said dynamic VPN manager adapts at least one of said enhanced 
integrated access devices (EIAD) to provide at least one of a guaranteed QoS 
parameter and a guaranteed security parameter to said VPN. 

5. (original) The apparatus of claim 1 , wherein said QoS parameter 
comprises at least one of a bandwidth parameter, a jitter parameter and a delay 
parameter. 

6. (original) The apparatus of claim 1 , wherein said security parameter 
comprises at least one of an encryption parameter, an authentication parameter 
and a filtering parameter. 

7. (original) The apparatus of claim 1, wherein said VPN supports at least 
one of an interactive gaming application and a conferencing application. 

8. (previously presented) The apparatus of claim 1 , wherein: 

said dynamic VPN manager is responsive to a user command to establish 
an application profile for a VPN, said application profile defining at least one of a 
QoS parameter, a security parameter and a corresponding billing rate for said 
VPN during at least one time period; 

said dynamic VPN manager adapting said at least one of a QoS 
parameter and a security parameter of said VPN according to said application 
profile. 

9. (previously presented) The apparatus of claim 1, wherein a command 
received from the VPN customer user comprises a user selection of one of a 
plurality of VPNs to join. 

10. (previously presented) The apparatus of claim 1 , wherein a command 
received from the VPN customer user comprises a user selection of one of a 
plurality of applications based on VPNs to join. 
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1 1 . (original) The apparatus of claim 9 ? wherein said plurality of VPNs have at 
least one of respective QoS requirements and security requirements, said QoS 
and security requirements having corresponding billing rates. 

12. (original) The apparatus of claim 10, wherein said plurality of applications 
have at least one of respective QoS requirements and security requirements, 
said QoS and security requirements having corresponding billing rates. 

13. (previously presented) The apparatus of claim 1, wherein said dynamic 
VPN manager comprises: 

an enhanced application portal (EAP), for providing said user interface to 
said VPN customer user and receiving therefrom VPN administration commands 
adapted to configure said VPN; 

a policy server, for communicating configuration parameters to network 
elements providing said VPN, said network configuration parameters determined 
according to VPN administration commands and profiles associated with said 
VPN administration commands; and 

a directory server, for storing VPN topology and operational parameters 
and providing said VPN topology and operational parameters to said policy 
server and said EAP, said VPN topology and operational parameters adapted for 
being updated by said VPN customer user via said EAP. 

14. (original) The apparatus of claim 13, wherein said dynamic VPN manager 
further comprises: 

at least one element management system (EMS) for managing a plurality 
of network elements forming said VPN. 

15. (original) The apparatus of claim 1, wherein said apparatus is included 

/ within an internet service provider (ISP) network including said access networks 
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and said core network, said dynamic VPN manager being included within a data 
center of said ISP. 

16. (previously presented) The apparatus of claim 1, wherein said VPN has 
associated with it a respective name; 

said VPN customer user being able to perform at least one of a VPN 
create, VPN modify, VPN store and VPN delete, command using said VPN 
name; 

said VPN modify command allows said VPN customer user to modify at 
least one of said VPN's topology, QoS parameter, and security parameter. 

17. (original) The apparatus of claim 16, wherein said VPN is retrieved from 
storage, activated and deactivated using a corresponding VPN name. 

18. (previously presented) A dynamic virtual private network (VPN) manager, 
comprising: 

an enhanced application portal (EAP) r for providing a user interface to a 
VPN customer user, and receiving therefrom VPN administration commands 
adapted to configure a VPN; 

a policy server, for communicating configuration parameters to network 
elements providing said VPN, said network elements comprising a plurality of 
internet protocol (IP) services aggregation switches for communicating between 
respective access networks and a core network and a plurality of enhanced 
integrated access devices (ElADs) for communicating between VPN customer 
users and access networks, said network configuration parameters determined 
according to VPN administration commands and profiles associated with said 

VPN administration commands; and 

a directory server, for storing VPN topology and operational parameters 
and providing said VPN topology and operational parameters to said policy 
server and said EAP, said VPN topology and operational parameters adapted for 
being updated by said VPN customer user via said EAP; 
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said dynamic VPN manager adapting at least one of said IP services 
aggregation switches and at least one of said ElADs to provide a bidirectional 
QoS for at least one IP flow. 

1 9. (original) The dynamic VPN manager of claim 1 8, further comprising: 

at least one element management system (EMS) for managing a plurality 
of network elements forming said VPN. 

20. (original) The dynamic VPN manager of claim 18, wherein a managed 
VPN has associated with it at least one of a defined quality of service (QoS) 
parameter, a defined security parameter and corresponding billing rate, at least 
one of said QoS parameter and said security parameter being adapted in 
response to said VPN administration commands. 

21 . (original) The dynamic VPN manager of claim 1 8, wherein: 

said dynamic VPN manager is included within a Universal Mobile 
Telecommunications Sen/ices (UMTS) packet transport network, said access 
networks comprising Gateway Generalized Packet Radio Service support nodes 
(GGSNs), said user accessing said UMTS packet transport network with a 
communications device nominally assigned to a home GGSN; 

said dynamic VPN manager causing communications with said user 
communication device to be routed through a GGSN geographically proximate 
said user communications device, 

22. (original) The dynamic VPN manager of claim 21 p wherein said 
determination of geographic location is made during an authentication procedure. 

23. (original) The dynamic VPN manager of claim 1 8, wherein; 

said apparatus is included within a CDMA-2000 packet transport network, 
said access networks comprising home agents, said user accessing said CDMA- 

566209 1 



PAGE 6116 * RCVD AT 6/18/2007 4:44:14 PM [Eastern Daylight Time] * SVR:USPT0-EFXRF-5/1 9 * DN1S:2738300 * CSID:+17325309808 * DURATION (mm-ss):02-30 



Jun-18-2007 03:33pm From-Mosar, Patterson 4 Sheridan, LLP - NJ +17325309808 T-306 P 007/016 F-468 

Serial No. 10/053,801 
Page 7 of 16 

2000 packet transport network with a communications device nominally assigned 
to a home agent; 

said dynamic VPN manager causing communications with said user 
communication device to be routed through a home agent geographically 
proximate said user communications device. 

24. (original) The apparatus of claim 23, wherein said determination of 
geographic location is made during an authentication procedure. 

25. (previously presented) A method, comprising: 

receiving, from an authorized VPN customer user, a request to modify a 
parameter of a virtual private network (VPN) provided in a network comprising a 
plurality of internet protocol (IP) services aggregation switches for communicating 
between respective access networks and a core network and a plurality of 
enhanced integrated access devices (ElADs) for communicating between said 
VPN customer user and said access networks; 

retrieving a profile associated with said user request; and 
providing configuration parameters to at least one of said IP services 
aggregation switches and at least one of said ElADs In response to said user 
request and said profile associated with said user request, said at least one of 
said IP services aggregation switches and at least one of said ElADs adapted by 
said configuration parameter to satisfy said parameter of said VPN, said 
parameter of said VPN comprising a bidirectional QoS for at least one IP flow. 

26. (original) The method of claim 25, wherein said user request is received 
via an enhanced application portal, 

27. (original) The method of claim 25, wherein said parameter to be modified 
comprises a quality of service (QoS) parameter, said QoS parameter adapting a 
data flow through a network such that a minimum QoS level is guaranteed to at 
least a portion of said VPN traversing said network. 

566209 1 



PAGE 7(16 * RCVD AT 6/1812007 4:44:14 PM [Eastern Daylight Time] * SVR:USPTO-EFXRF-5/19 * DNIS:2733300 * CSID:+1 7325309808 1 DURATION (mm-ss):02-30 



Jun-18-2007 03:33pm Frora-Mosar, Patterson & Sheridan, LLP - NJ 



+17325309308 



T-306 P. 008/016 F-463 



Serial No. 10/053,801 
Page 8 of 16 

28. (original) The method of claim 25, wherein: 

said parameter to be modified comprises a security parameter, said 
security parameter adapting a data flow through a network such that a minimum 
security level is guaranteed to at least a portion of said VPN traversing said 
network, 

29. (original) The method of claim 27, wherein said QoS parameter comprises 
at least one of a bandwidth parameter, a jitter parameter, a delay parameter. 

30. (original) The method of claim 28, wherein said security parameter 
comprises at least one of an encryption parameter, an authentication parameter 
and a filtering parameter. 

31 . (original) The method of claim 21, wherein said VPN supports at least one 
application having associated with it at least one of respective QoS requirements 
and security requirements, said QoS and security requirements having 
corresponding billing rates. 

32. (original) The method of claim 31, wherein said application comprises at 
least one of an interactive gaming application and a conferencing application. 

33. (previously presented) The method of claim 27, wherein said VPN has 
associated with it a respective name; 

said VPN customer user being able to perform at least one of a VPN 
create, VPN modify, VPN store and VPN delete command using said VPN name; 

said VPN modify command allows said VPN customer user to modify at 
least one of said VPN's topology, QoS parameter, and security parameter. 

34. (original) The method of claim 33, wherein said VPN is retrieved from 
storage, activated and deactivated using a corresponding VPN name. 
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35. (previously presented) An application programming interface (API) for use 
by an application to perform VPN management activities, said API performing the 
functions of: 

receiving, from an authorized VPN customer user, a request to activate, 
deactivate, or modify a parameter of a virtual private network (VPN) provided in a 
network comprising a plurality of internet protocol (IP) services aggregation 
switches for communicating between respective access networks and a core 
network and a plurality of enhanced integrated access devices (ElADs) for 
communicating between said VPN customer user and said access networks; 
retrieving a profile associated with said user request; and 
providing configuration parameters to at least one of said IP services 
aggregation switches and at least one of said ElADs in response to said user 
request or said profile associated with said user request, said at least one of said 
IP services aggregation switches and at least one of said ElADs adapted by said 
configuration parameter to satisfy said parameter of said VPN, said parameter of 
said VPN comprising a bidirectional QoS for at least one IP flow. 

36. (original) The API of claim 35, wherein said application executes on an 
enhanced application portal. 
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